Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/p0nTim3h5i4NDp9X59HyZKimnF8.roa
File: p0nTim3h5i4NDp9X59HyZKimnF8.roa (raw, json)
Hash identifier: ceBPIlfssX7ZPTJc51a01d9W083oWFjqj8KMt2w4nPU=
Subject key identifier: A7:49:D3:8A:6D:E1:E6:2E:0D:0E:9F:57:E7:D1:F2:64:A8:A6:9C:5F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0818
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/p0nTim3h5i4NDp9X59HyZKimnF8.roa
Signing time: Tue 29 Sep 2020 09:57:45 +0000
ROA not before: Tue 29 Sep 2020 09:57:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 203.65.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2072 (0x818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A749D38A6DE1E62E0D0E9F57E7D1F264A8A69C5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d0:10:fa:2e:e2:4e:4b:96:3c:40:b2:c8:a2:
d8:41:16:b0:e9:38:a9:15:1a:1d:10:30:ac:cb:c3:
06:bb:ad:b2:f6:22:1c:1c:af:de:c3:f1:af:5e:e7:
60:f2:10:22:74:ca:0c:0e:2d:2e:fa:b7:3c:1d:75:
1f:2e:86:2d:9b:ef:14:ae:1d:47:c2:8a:49:de:b8:
14:46:e1:53:15:b1:26:fe:0d:39:db:a0:e3:f5:96:
87:1c:6c:d1:be:1a:1b:95:34:83:40:71:32:af:8a:
b0:5a:2c:e0:62:0c:c2:a9:e3:a6:eb:86:bf:9d:ed:
a8:ba:5a:5b:c2:09:2c:91:c0:d0:1b:a1:54:14:94:
50:65:72:87:6e:1b:2f:aa:73:b4:74:53:75:9e:a1:
d8:52:6c:fd:78:4e:e2:67:cf:c0:ce:89:2d:c2:cc:
b8:20:8e:76:71:67:f3:f6:a7:aa:21:b6:8f:e2:d8:
30:7f:02:10:89:70:61:ee:14:cd:70:bb:bc:58:bb:
bf:5f:8a:2d:0b:81:a2:98:ce:14:b3:39:1e:c1:4d:
24:d2:24:ba:ec:cc:c5:01:4d:c3:46:fe:29:ff:a6:
53:d5:72:2b:a1:cc:ce:90:91:f5:2c:e7:b2:c0:62:
35:35:97:1f:b9:3c:37:e3:e0:bc:20:7c:21:72:75:
0b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:49:D3:8A:6D:E1:E6:2E:0D:0E:9F:57:E7:D1:F2:64:A8:A6:9C:5F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/p0nTim3h5i4NDp9X59HyZKimnF8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.172.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:15:69:70:8a:d1:a5:fe:5e:ad:81:b8:5c:d6:67:d9:41:63:
36:f3:9a:42:4b:5c:54:24:0d:7a:0b:f1:37:5b:7f:00:f9:61:
3e:74:dc:67:d0:66:05:34:c4:a7:cf:41:13:93:26:e0:ef:14:
3e:69:c7:0f:42:d2:46:4e:5b:e2:e8:07:41:b8:0d:4b:29:26:
dd:d9:28:e0:88:fe:3d:e9:06:d0:9c:a8:4e:28:1b:d9:b3:02:
90:88:70:60:0f:e3:25:3e:23:0a:89:e5:52:44:b9:56:19:62:
62:c1:37:62:3e:e9:1d:f0:55:fc:f2:0d:55:6b:7d:af:e7:33:
d3:96:37:b3:13:cd:9c:9f:db:47:5b:e0:5c:73:fe:3e:a7:b6:
80:a5:b2:db:22:9b:2f:22:95:98:fb:28:e3:de:6b:08:52:a3:
29:94:4d:35:6d:1a:2e:ee:f8:7d:4a:2c:bc:ce:76:0d:74:f7:
b1:a7:ec:76:8c:68:62:4a:44:1c:dc:75:bd:f8:b5:d2:1e:8d:
7d:a4:73:02:f6:98:5d:3b:b9:34:4d:d5:44:4b:57:02:1f:2e:
96:d1:15:b1:18:20:c5:50:cd:49:15:cd:05:8a:00:7d:66:7e:
ce:fb:86:5a:b7:61:6d:87:e2:e1:22:b2:8b:f1:be:a4:09:06:
a0:84:5d:b0
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCBgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3NDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE3NDlEMzhBNkRFMUU2
MkUwRDBFOUY1N0U3RDFGMjY0QThBNjlDNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDP0BD6LuJOS5Y8QLLIothBFrDpOKkVGh0QMKzLwwa7rbL2Ihwc
r97D8a9e52DyECJ0ygwOLS76tzwddR8uhi2b7xSuHUfCikneuBRG4VMVsSb+DTnb
oOP1loccbNG+GhuVNINAcTKvirBaLOBiDMKp46brhr+d7ai6WlvCCSyRwNAboVQU
lFBlcoduGy+qc7R0U3WeodhSbP14TuJnz8DOiS3CzLggjnZxZ/P2p6ohto/i2DB/
AhCJcGHuFM1wu7xYu79fii0LgaKYzhSzOR7BTSTSJLrszMUBTcNG/in/plPVciuh
zM6QkfUs57LAYjU1lx+5PDfj4LwgfCFydQuTAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUp0nTim3h5i4NDp9X59HyZKimnF8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcDBuVGltM2g1aTRORHA5
WDU5SHlaS2ltbkY4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AMtBrDANBgkqhkiG9w0BAQsFAAOCAQEADxVpcIrRpf5erYG4XNZn2UFjNvOaQktc
VCQNegvxN1t/APlhPnTcZ9BmBTTEp89BE5Mm4O8UPmnHD0LSRk5b4ugHQbgNSykm
3dko4Ij+PekG0JyoTigb2bMCkIhwYA/jJT4jConlUkS5VhliYsE3Yj7pHfBV/PIN
VWt9r+cz05Y3sxPNnJ/bR1vgXHP+Pqe2gKWy2yKbLyKVmPso495rCFKjKZRNNW0a
Lu74fUosvM52DXT3safsdoxoYkpEHNx1vfi10h6NfaRzAvaYXTu5NE3VREtXAh8u
ltEVsRggxVDNSRXNBYoAfWZ+zvuGWrdhbYfi4SKyi/G+pAkGoIRdsA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org